Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/41A65EC48DB811E98ACC9F7EC4F9AE02.roa
File: 41A65EC48DB811E98ACC9F7EC4F9AE02.roa (raw, json)
Hash identifier: JriQnu9RyV0MxByrmlgd5TNf7MK40DxrMrM4qUBhFHY=
Subject key identifier: E5:4E:81:2C:F4:E7:B8:1C:51:C7:4B:A7:DA:93:B4:C2:68:4D:E4:E8
Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A
Certificate serial: 33E0
Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/41A65EC48DB811E98ACC9F7EC4F9AE02.roa
Signing time: Tue 20 Jun 2023 14:50:21 +0000
ROA not before: Tue 20 Jun 2023 14:50:21 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 17460
IP address blocks: 58.181.227.0/24 maxlen: 24
203.155.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 08:12:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13280 (0x33e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A
Validity
Not Before: Jun 20 14:50:21 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=6491bcad-f3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0d:ed:97:dd:0c:4e:d9:2c:fa:25:ed:8f:49:
51:13:b2:e6:de:29:33:c1:e0:3d:b0:32:b4:b1:d8:
2b:2e:6e:b6:4f:34:b1:4d:c9:64:c2:b7:5b:35:2d:
2e:42:fa:c4:73:fb:6d:50:c2:4e:41:8d:78:65:f1:
27:d1:06:09:64:08:a1:3f:0b:fe:ea:7a:e1:05:c1:
62:bf:ef:97:e1:7f:66:e6:2a:b1:32:56:07:99:a7:
80:b3:91:ed:88:00:cf:3c:2a:fb:50:6f:8c:db:14:
fd:75:19:8e:4c:ce:27:be:6b:44:d2:36:e8:1a:0f:
05:c9:bc:08:35:31:55:22:35:49:fa:7c:cb:00:d5:
90:91:18:44:85:68:99:f7:50:62:99:6e:6f:aa:be:
93:75:5a:9c:11:0c:4b:63:4f:08:7b:ff:38:7c:ec:
74:aa:e4:84:69:61:2d:71:bc:db:1c:de:81:9c:8f:
a1:c1:92:82:0c:20:a0:91:65:31:68:43:9e:d1:46:
51:b7:51:ab:8b:41:43:f1:4b:74:3d:ff:5e:ab:19:
6d:85:67:e5:7c:12:f6:e5:30:fd:ef:ca:50:a7:ea:
94:ae:32:6a:fe:12:84:db:6b:a2:44:70:8e:e5:0f:
06:c4:6a:7d:3e:eb:62:cb:eb:9b:95:9c:98:f6:45:
05:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4E:81:2C:F4:E7:B8:1C:51:C7:4B:A7:DA:93:B4:C2:68:4D:E4:E8
X509v3 Authority Key Identifier:
keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/41A65EC48DB811E98ACC9F7EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.181.227.0/24
203.155.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1f:31:06:c9:1e:7c:c0:76:b1:6d:b1:08:2b:04:da:68:a2:
84:f2:f4:68:fb:5b:f0:19:36:03:16:72:0f:d0:36:f8:f3:0e:
75:b2:de:c7:09:3b:87:e2:1f:38:e9:de:be:67:c4:52:cc:ee:
cc:68:ef:b5:a1:f2:72:77:35:00:bd:54:f4:03:ea:45:2b:68:
ae:1d:ea:88:45:c8:a4:44:70:42:66:2e:0d:75:a1:58:6b:b3:
f6:e8:53:d0:90:b5:2d:5e:b4:91:98:cb:f7:3e:d4:72:3d:92:
2e:34:01:71:29:89:31:d4:8a:ba:24:15:ad:a1:72:a9:07:b7:
e2:9d:ac:79:f4:6c:c6:aa:5a:e6:86:6b:14:be:d9:c9:7b:ca:
3f:6e:d4:17:2e:4f:3a:4a:7b:02:81:cb:0f:ad:7f:79:d2:c6:
0c:0e:d4:f0:c7:6b:93:9a:00:9a:3d:76:7f:8e:68:f1:15:0c:
0e:61:65:5f:bc:28:4f:6c:cc:42:12:85:90:16:a8:f7:b6:60:
1b:8c:e6:de:e2:76:d8:bc:15:70:31:04:fa:ed:c1:78:d4:b7:
d3:71:6f:82:2e:56:f4:cd:29:f8:2a:0c:94:a0:d3:25:b6:c5:
ee:e9:5c:70:c3:7e:fd:78:ef:01:c3:c8:01:55:dd:b1:73:02:
4e:ac:52:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org